[zeromq-dev] security model recommendation

Ilya Dmitrichenko errordeveloper at gmail.com
Thu Sep 8 03:35:12 CEST 2011


On 8 September 2011 01:51,  <chrish at techspecs.com> wrote:
> Any recommendations to free and/or commercial software that can be
> placed in front of zmq to protect against this threat?

You most like best of monitoring the frequency and behaviour of
the users, tools like Netflow will help you to get the statistic in real-time
and you may also collect stats on the zmq contents.

Once you see what really goes on, you can implement some auto-kill,
e.g. deny the IP which peaks according to netflow stats and also try
to figure what are the regular usage patterns, unless your application
too crazy. You can also do some sophisticated fail-over tactics, e.g.
the abusers will be directed to a dummy server and you will see what
are they trying to do exactly :) Anyhow, you will need to do some load
ballancing and fail-over tricks to maintain a healthy public server.
With multiple servers you can do it all quite nicely, hece use all of the
flexibility that zmq can give you - just make sure to have most isolation
you possibly can afford.



More information about the zeromq-dev mailing list